Hi, we have an email that originated from email.dropbox.com and has a link to https://hyzas.xss.ht/ which is a "payload to test for Cross-site Scripting" from the XSS Hunter Team.
Was it sent in error? How was it sent? I know what XSS is and how it can be used, but this was reported as malicious, not from a security professional. https://pastebin.com/8Q7ZPRQ6
